Security and Data Management at Beaconstac : SOC 2 Compliant

Beaconstac becomes the first QR Code platform on the planet to be SOC 2® Type 1 certified! As you march towards building and scaling up a connected physical and digital world, it’s important for us that your brand and audiences are always interacting in a safe environment.

UPDATE: Beaconstac is now SOC 2® Type 2 certified!

What does SOC 2® certified mean? How did we go about it?

At Beaconstac, we have always aligned product engineering with a security-first approach – data encryption, best-in-class privacy practices, and threat-detection safeguards.

However, we wanted to run our security and data management practices by external data security experts so we meet the highest standards, expected of enterprise-grade platforms.

SOC 2®, developed by the American Institute of Certified Public Accountants (AICPA), is an auditing procedure to ensure that organizations like ours manage data safely and securely. This procedure is to ensure that we protect the interests and privacy of our customers.

The SOC 2® Type 1 procedure defines the criteria for managing customer data based on five trust principles — security, availability, processing integrity, confidentiality, and privacy. We ran our current security practices by these principles.

This audit procedure helped us reassure our strengths and uncover what we could do better. By the end of the audit process, we have strengthened our ecosystem to tackle internal and external threats.

It was critical for us at this point

It’s fair to ask when none of our competitors stamped their security practices against SOC 2’s guidelines, why was it essential for us to obsess over this?

In the wake of the pandemic, there was a need to switch to contactless digital-first systems. And QR Codes have emerged as the core of building these safe and connected systems. Last week Beaconstac’s centralized systems reported 22 Million QR Code scans! That’s one message loud and clear: QR Code adoption amongst consumers is exploding.

And if we have learned anything from the recent SolarWinds data breach, it is that no company can be complacent about data security and management. Not just that, it can take months to detect an unauthorized breach. WSJ reported that Office 365 email accounts were compromised for at least nine months before being detected.

To tackle these situations, SOC 2® compliance required us to set up alerts for a number of situations:

Exposure or modification of data, controls, configurations

File transfer activities

Privileged filesystem, account, or login access

As businesses and organizations like you continue to scale your QR Code campaigns globally, it’s imperative for us that you feel safe while doing so.

What does SOC 2® certified mean for our customers?

To start with, nothing changes on your dashboard or your QR Codes! 🙂

Our SOC 2® certification assures you that –

Your data is protected with procedures that minimize risks and vulnerabilities

We have implemented enterprise-grade security measures, which will undergo regular comprehensive audits

To conclude, we have an existential interest in protecting your data. Every person, team, and organization deserves and expects their data to be secure and confidential. Safeguarding this data is a critical responsibility we have to our customers, and we continue to work hard to maintain that trust.

Please drop us a line at [email protected] if you have any questions or concerns.

Author Details

Monika Adarsh

Monika Adarsh is the Director of Inbound Marketing at Beaconstac where her primary job is to help users find answers to anything related to QR Codes. She works closely with customers to understand QR Code usage trends and build a framework for successful QR Code campaigns. She enjoys documenting her learnings about the QR Code market as posts and playbooks. She also anchors a podcast to uncover ways of using QR Codes in DTC/CPG brands. In her free time, she loves gardening and decorating spaces.

https://www.beaconstac.com/qr-code-generator

[email protected]